$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa File: fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa (raw, json) Hash identifier: 3Tbb8tmQeeICx/3TgvY/sCSUdhfqa9xS40Ll+hHrQkQ= Subject key identifier: 7F:53:90:3D:16:98:84:BD:97:2F:C4:89:5B:72:56:87:67:68:E5:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 349A4663317B88AEF37400178BCE51F52066D648 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa Signing time: Mon 28 Apr 2025 15:20:26 +0000 ROA not before: Mon 28 Apr 2025 15:20:26 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9a:46:63:31:7b:88:ae:f3:74:00:17:8b:ce:51:f5:20:66:d6:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:20:26 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=e3293d3d7fbc5de065da62019397b761445d8f8de73314cf390868f43b12a111, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b3:62:7b:42:39:fd:17:98:a0:5b:09:23:be: bf:74:b8:5f:7f:6f:66:e5:87:0c:5d:e1:7c:5a:2e: db:09:ee:a1:a0:39:1a:c6:37:ec:bb:84:0e:99:f0: 4b:75:01:86:02:5d:74:5b:e8:9f:4b:25:b0:a6:aa: 52:31:d1:92:cb:52:b1:f1:b1:61:82:ba:1e:0f:40: f5:ea:ca:c0:2e:a8:6b:84:26:3b:eb:51:35:7e:3b: 28:23:e9:63:64:71:87:c0:9c:13:1e:2f:74:63:57: d4:c9:de:d7:68:02:42:e4:ff:a2:ec:e4:d5:9d:65: 11:39:d7:ce:2e:0d:c5:fa:39:35:20:08:b4:c9:31: bc:a4:ca:c5:b6:22:f6:12:8c:db:82:4c:e8:b2:f1: 74:f2:b5:38:eb:29:58:0e:cc:63:93:d0:b1:85:9b: b0:2b:11:11:90:36:01:7a:05:3b:30:e0:ae:03:5f: 4e:44:f0:24:2c:32:b4:96:cb:48:18:45:fc:05:94: 6f:c7:9b:04:70:1f:bc:fc:7c:44:b9:98:71:75:da: e9:fc:7c:c7:70:ca:6b:1c:32:f8:f6:c9:46:96:78: 16:7a:51:a4:11:f5:4d:22:3e:30:98:f1:d0:31:75: fe:b9:d0:55:46:0b:ef:7a:e4:ad:0e:d3:1d:c1:10: ab:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:53:90:3D:16:98:84:BD:97:2F:C4:89:5B:72:56:87:67:68:E5:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb576ea7-72d9-4eae-aee5-e61e6981de1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:5000::/40 Signature Algorithm: sha256WithRSAEncryption 09:ae:86:a0:0e:e7:ed:39:0b:6c:09:fc:c4:73:4e:ba:2b:34: 41:38:ee:2e:e2:30:46:42:09:29:95:3d:35:64:15:90:8c:84: f9:e0:39:34:3f:55:57:3c:77:87:8e:1f:36:c1:94:1e:c6:f6: ab:ed:47:c1:99:24:de:2c:55:13:22:9f:e4:1e:4a:95:ac:d0: 81:6b:ec:0e:12:0c:60:16:a0:8e:4c:71:99:9e:c7:9b:ab:30: 47:42:6d:cb:41:35:82:9d:4f:85:01:66:44:03:ac:97:49:aa: 30:18:7b:30:6e:cf:76:f4:cc:2d:55:35:37:76:c9:94:47:85: 37:06:1d:8d:f6:35:d1:b0:e9:6a:b9:5b:7e:83:16:ab:f0:84: 1f:e8:08:07:fe:ce:69:55:6e:30:82:5b:f9:28:df:74:27:ab: df:78:d1:4f:da:1f:60:46:0a:5e:6d:0d:67:d0:18:c0:e3:0d: 0d:d4:8f:9e:30:8d:62:54:e8:83:00:cc:e2:01:80:9f:85:7a: ed:00:d7:b6:cd:d2:13:88:ff:6a:91:78:d2:91:bc:df:85:43: 4f:fa:65:79:8a:47:8c:e0:ab:5c:b4:be:ee:bb:30:9f:fb:10: 28:68:2d:93:98:98:d9:a8:d2:cb:e9:ab:a7:ed:57:2f:04:d9: 8c:30:43:d5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNJpGYzF7iK7zdAAXi85R9SBm1kgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUyMDI2WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzI5M2QzZDdmYmM1ZGUwNjVkYTYyMDE5Mzk3Yjc2MTQ0 NWQ4ZjhkZTczMzE0Y2YzOTA4NjhmNDNiMTJhMTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLs2J7Qjn9F5igWwkjvr90uF9/b2blhwxd4XxaLtsJ7qGg ORrGN+y7hA6Z8Et1AYYCXXRb6J9LJbCmqlIx0ZLLUrHxsWGCuh4PQPXqysAuqGuE JjvrUTV+Oygj6WNkcYfAnBMeL3RjV9TJ3tdoAkLk/6Ls5NWdZRE5184uDcX6OTUg CLTJMbykysW2IvYSjNuCTOiy8XTytTjrKVgOzGOT0LGFm7ArERGQNgF6BTsw4K4D X05E8CQsMrSWy0gYRfwFlG/HmwRwH7z8fES5mHF12un8fMdwymscMvj2yUaWeBZ6 UaQR9U0iPjCY8dAxdf650FVGC+965K0O0x3BEKstAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUf1OQPRaYhL2XL8SJW3JWh2do5cMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiNTc2ZWE3LTcyZDktNGVhZS1hZWU1LWU2MWU2OTgxZGUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gUDANBgkqhkiG9w0BAQsFAAOCAQEACa6GoA7n7TkLbAn8xHNOuis0 QTjuLuIwRkIJKZU9NWQVkIyE+eA5ND9VVzx3h44fNsGUHsb2q+1HwZkk3ixVEyKf 5B5KlazQgWvsDhIMYBagjkxxmZ7Hm6swR0Jty0E1gp1PhQFmRAOsl0mqMBh7MG7P dvTMLVU1N3bJlEeFNwYdjfY10bDparlbfoMWq/CEH+gIB/7OaVVuMIJb+SjfdCer 33jRT9ofYEYKXm0NZ9AYwOMNDdSPnjCNYlTogwDM4gGAn4V67QDXts3SE4j/apF4 0pG834VDT/pleYpHjOCrXLS+7rswn/sQKGgtk5iY2ajSy+mrp+1XLwTZjDBD1Q== -----END CERTIFICATE-----Generated at Wed May 7 21:53:14 2025 by rpki-client